I&JPN Toolkit: DNS Level Action to Address Abuses

In this video interview and podcast for iQ, I spoke with Elizabeth Behsudi about the recently published I&JPN Toolkit on Domain Name System (DNS) Level Action to Address Abuses.

This new resource intends to support domain name system operators in the design of their DNS abuse-related activities, notifiers in the detection and reporting of problematic activity within the DNS, as well as legislators, and law enforcement to determine procedures for dealing with different types of DNS Abuse.

I had the opportunity to learn more about all of this by speaking with Elizabeth Behsudi, who is the Director of the Domains & Jurisdiction Program, and Secretariat at the I&JPN. Please have a watch or a listen!

Just want to listen? Here’s the podcast version:

https://podcast.iq.global/episode/ijpn-toolkit-dns-level-action-to-address-abuses-guest-elizabeth-behsudi

iQ Abuse Report Overview & AbuseStats.com

One of the brains behind iQ’s brand new and free iQ Abuse Report service is my good colleague LG Forsberg, our CTO at iQ.  I put him in the spotlight for this discussion, and LG provided an overview of this service that is designed to allow anyone to gain daily insight into whether you or someone else has a problem with domain name abuse.

Just want to listen? Here’s the podcast version:

https://podcast.iq.global/episode/iq-abuse-report-overview-abusestats-com-guest-lg-forsberg

How Spamhaus addresses DNS abuse

In this latest segment of the iQ video blog series, I conducted a wide ranging discussion with Carel Bitter, the Head of Data at Spamhaus. Carel is is part of the very fabric of The Spamhaus Project, having been with the organization for over a decade.

Topics include:

  • How is the Spamhaus Domain Block List (DBL) used?
  • How is the list compiled? How do you calculate it?
  • Comments on real data vs. fake data use trends.
  • Comments on measuring the effect of price vs. measuring # of abuse reports in new gTLDs vs. ccTLDs and legacy TLDs.
  • How can a TLD or registrar get off the “bad list”?
  • How can a registry, registrar, or registrant remove a specific name or bulk list of names from the DBL?
  • What about domains in the DBL where no evidence of spam is actually detected?
  • Any systematic way to provide a real time feedback loop on takedowns/serverHolds?
  • Why do some TLD or registrars suddendly appear and then disappear from the bad lists?
  • What about providing evidence? Is it possible to get email headers or other evidence with your reports?
  • What are some new attack vectors you are observing these days? What’s a “phishing rod” threat vs. a “phishing” threat?

I hope you find the inteview helpful to your operation. We all must continue to cooperate and share knowledge in the effort to fight DNS abuse.

Managing Domain Name Abuse

For episode #4 of the iQ video blog series, we took a deeper dive into the world of managing domain name abuse with iQ’s resident expert and czar of managing domain name abuse for a variety of iQ clients, Mr. Steinar Grøtterød, officially Director of Registry Operations & Compliance at iQ.

I had the opportunity to get Steinar’s opinions on such matters as:

  • How can a registry or registrar reduce the amount of duplicative and non-actionable abuse reports?
  • How do you get off a blacklist or bad list?
  • Should there be evidence standards from the reputation/blacklist providers?
  • What’s up with ccTLDs and abuse?
  • Why do European ccTLD operators, registrars, and resellers need to start paying attention to the NIS2 Directive?

A conversation with MrPremium.com

This marked my third interview conducted for the iQ video blog series. For this episode we took the subject matter in a different direction, posting my conversation with a rising businessperson in the domain name industry aftermarket segment, Mr. Mark Ghoriafi, who is the founder of MrPremium.com.

It’s no surprise that buying and selling premium domain names (via EPP or direct) represents a significant revenue opportunity for many registry operators, registrars, resellers, aftermarket sites, auction houses and third party brokers such as MrPremium.com.

Mark shares a few stories about his unusual entry experience into the domain name industry, and how he uses data and other assets to help him sell premium domain names. He also shares tips on which web tools and techniques he finds useful in his day to day outbound sales operation along with thoughts about social audio platforms’ (e.g. Clubhouse) impact on the industry to date.

Cleaning Up The Internet

My interview with Jorij Abraham, director of Scamadviser.com. This video was published along with a blog post over at iQ on March 2, 2021.

Amsterdam, March 2nd, 2021.

iQ Abuse Manager & Scamadviser.com Clean Up the Internet
By allowing Internet Infrastructure providers to act faster, more effectively and efficiently against scams.

Every day more than 15,000 new malicious websites pop-up on the web. They exploit the infrastructure of the Internet, causing $43 billion in damages to consumers, business, and service providers.

To help registrars, registries and hosting companies identify online scams faster IQ Abuse Manager and Scamadviser have joined forces.

Scamadviser.com checks 50,000 new domain names every day to determine the likelihood of being either legit or a possible scam. iQ Abuse Manager has integrated Scamadviser’s data into its abuse feed to make identification of malicious websites, faster, easier and facilitate take down processes more efficiently.

LG Forsberg, CTO of iQ explains why the cooperation with Scamadviser is unique: “Our abuse feed already includes a multitude of sources reporting on many types of malicious behaviour like phishing, malware, botnets and spam. However, the number of scams where consumers and businesses lose money to actors not delivering products or services or in other ways scam consumers of data or money is growing at an exponential rate. Scamadviser’s data is unique in that it can identify these kinds of cybercrime.”

Jorij Abraham, director of Scamadviser elaborates: “We are incredibly happy that iQ has integrated our data into its feed and abuse manager platform, helping more than 150 Internet infrastructure providers to keep the Internet safe. In this way our mission to protect consumers from being scammed is taking the next big step.”.

###

About iQ

iQ is a SaaS, software, and consulting service provider for the domain name industry, working with over 150 different top-level domain names and domain name registrars, bringing them intelligence, automation, and access to expertise and experience. iQ Abuse Manager is a CRM-like abuse management system primarily for top-level domain name registries, registrars, and hosting companies. Every day the service performs more than 60 million scans to combat domain name abuse.  

For questions regarding iQ and iQ Abuse Manager you can contact lg@iq.global

About Scamadviser.com

Scamadviser.com is used by over 2.5 million consumers every month to determine if a website is legitimate or a scam. Scamadviser’s data is also used by law enforcement, brand protection agencies, social media networks and security companies to fight online fraud. Scamadviser is an initiative of the Ecommerce Foundation.

For questions you can contact: jorij.abraham@ecommercefoundation.org, +31 6 52840039.

A conversation with “LG” Forsberg

This first week of February 2021 marks the beginning of a video blog series I’ll be producing for our company, iQ. We plan to feature experts sharing their stories and insight on relevant topics that many of us deal with in our day-to-tasks along with overarching topics facing the domain industry. And maybe we’ll share a refreshing beverage or two while we talk. Who knows where the conversation will go!

This first episode features a 20 minute interview with iQ’s CTO, Mr. “LG” Forsberg. If you’ve ever attended or wanted to attend Nordic Domain Days (LG’s the founder); want to hear what he has to say about challenges in trying to tackle domain name abuse and how iQ decides which abuse feeds/reputation block lists to integrate, then you may want to check out this video.

This is a work in progress so feedback is welcome. We expect to refine and improve it over time!

iQ Domain Analytics Campaign Tracker saves time, headaches and resource costs for registry operators.

Are you using spreadsheets or other dashboard/spreadsheets on steroids services that require a lot of handholding because they are designed by folks that are not in the domain industry?

iQ Analytics is a SaaS Business Intelligence platform used by gTLD and ccTLD Registries. It has the ability to track Registry marketing campaigns and provide actionable insights into the performance of your Registrar campaigns.

Spend 4 minutes and take a look at the iQ Analytics Campaign Tracker and Dashboard. It’s specifically designed for the domain industry, by the domain industry.

iQ Abuse Manager – Not Just for Registries

This is an article originally posted on the iQ blog on September 9, 2020.

Subsequent to our last post announcing RegistryOffice becoming iQ, our new company name and the umbrella for all our products and services, we’d like to inform you that iQ Abuse Manager (formerly RegistryOffice Abuse Monitor) is now used by leading registrars and nearly 150 gTLDs and ccTLDs, and is also available to hosting service providers and brands.

Check out our just released 5 minute introductory video:

iQ Abuse Manageris our abuse management service where we offer access to curated abuse feeds from the world’s leading sources together with an API and management system, which makes handling domain name abuse cases efficient as possible.  We also provide a fully managed service utilising this tool.

The applications for our service are quite broad. For example, If you are a brand owner with a portfolio of domain names, IQ Abuse Manager can alert you if any of those names have been reported in our abuse feeds.  

If you are a registry operator contracted with ICANN, the iQ Abuse Manager will assist you in keeping your namespace clean and in compliance with ICANN Spec 11.3.b. 

If you are a registrar, you can for example, integrate our API with your existing CRM/ticketing system to proactively detect and manage reported abuse cases. With this tool a registrar can work in concert with various parties in reducing abuse levels. 

Whether you are a registry, registrar or hosting service, iQ Abuse Manager will help you improve your abuse workflow, reduce associated costs, mitigate false positives and help to protect your own brand and reputation.  It also helps to build a safer Internet! 

We’re currently offering a free no-obligation trial. Contact us at sales@iq.global to get started.